게시일 : 2020년 12월 30일
개인정보보호위원회에서 개인정보의 기술적 관리적 보호조치 기준(제2020-5호) 해설서가 발간되었습니다.
업무에 참고하시기 바랍니다.
개인정보보호법(이하 “법”이라 한다.)에 따라 정보통신서비스 제공자등이 이용자의 개인정보를 처리함에 있어 안전성 확보를 위하여 필요한 '개인정보의 기술적․관리적 보호조치 기준해설'을 목적으로 합니다.
해설서에서 안내하고 있는 방법이나 예시 등은 정보통신서비스 제공자등이 처리하는 개인정보의 유형 및 중요도, 개인정보를 처리하는 방법 및 환경, 보안 위험요인 등에 따라 다르게 적용될 수 있습니다.
[목차]
Ⅰ. 개인정보의 기술적․관리적 보호조치 기준 개요 ·································· 1
1. 개 요 ···················································································································· 2
2. 법적 근거 ··········································································································· 3
Ⅱ. 개인정보의 기술적․관리적 보호조치 기준 전문 ··································· 5
Ⅲ. 개인정보의 기술적․관리적 보호조치 기준 해설 ··································· 12
제 1조 (목적) ··········································································································· 13
제 2조 (정의) ··········································································································· 22
제 3조 (내부관리계획의 수립․시행) ······························································· 30
제 4조 (접근통제) ·································································································· 45
제 5조 (접속기록의 위․변조방지) ··································································· 59
제 6조 (개인정보의 암호화) ·············································································· 61
제 7조 (악성프로그램 방지) ·············································································· 67
제 8조 (물리적 접근 방지) ················································································· 70
제 9 조 (출력․복사시 보호조치) ······································································· 72
제10조 (개인정보 표시 제한 보호조치) ························································· 74
제11조 (재검토 기한) ···························································································· 75
[부칙] ································································································································ 75
Ⅳ. 부록 ···························································································································· 76
1. 정보통신서비스 제공자등을 위한 망분리 해설 ····································· 77
2. FAQ ·························································································································· 90
출처 : https://www.pipc.go.kr/np/cop/bbs/selectBoardArticle.do?bbsId=BS217&mCode=D010030000&nttId=7044
게시일 : 2020년 12월 30일
개인정보보호위원회에서 개인정보의 기술적 관리적 보호조치 기준(제2020-5호) 해설서가 발간되었습니다.
업무에 참고하시기 바랍니다.
개인정보보호법(이하 “법”이라 한다.)에 따라 정보통신서비스 제공자등이 이용자의 개인정보를 처리함에 있어 안전성 확보를 위하여 필요한 '개인정보의 기술적․관리적 보호조치 기준해설'을 목적으로 합니다.
해설서에서 안내하고 있는 방법이나 예시 등은 정보통신서비스 제공자등이 처리하는 개인정보의 유형 및 중요도, 개인정보를 처리하는 방법 및 환경, 보안 위험요인 등에 따라 다르게 적용될 수 있습니다.
[목차]
Ⅰ. 개인정보의 기술적․관리적 보호조치 기준 개요 ·································· 1
1. 개 요 ···················································································································· 2
2. 법적 근거 ··········································································································· 3
Ⅱ. 개인정보의 기술적․관리적 보호조치 기준 전문 ··································· 5
Ⅲ. 개인정보의 기술적․관리적 보호조치 기준 해설 ··································· 12
제 1조 (목적) ··········································································································· 13
제 2조 (정의) ··········································································································· 22
제 3조 (내부관리계획의 수립․시행) ······························································· 30
제 4조 (접근통제) ·································································································· 45
제 5조 (접속기록의 위․변조방지) ··································································· 59
제 6조 (개인정보의 암호화) ·············································································· 61
제 7조 (악성프로그램 방지) ·············································································· 67
제 8조 (물리적 접근 방지) ················································································· 70
제 9 조 (출력․복사시 보호조치) ······································································· 72
제10조 (개인정보 표시 제한 보호조치) ························································· 74
제11조 (재검토 기한) ···························································································· 75
[부칙] ································································································································ 75
Ⅳ. 부록 ···························································································································· 76
1. 정보통신서비스 제공자등을 위한 망분리 해설 ····································· 77
2. FAQ ·························································································································· 90
출처 : https://www.pipc.go.kr/np/cop/bbs/selectBoardArticle.do?bbsId=BS217&mCode=D010030000&nttId=7044